CVE-2025-26622— sqrt doesn't define rounding behavior in Vyper
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-26622
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
sqrt doesn't define rounding behavior in Vyper
Source: NVD (National Vulnerability Database)
Vulnerability Description
vyper is a Pythonic Smart Contract Language for the EVM. Vyper `sqrt()` builtin uses the babylonian method to calculate square roots of decimals. Unfortunately, improper handling of the oscillating final states may lead to sqrt incorrectly returning rounded up results. This issue is being addressed and a fix is expected in version 0.4.1. Users are advised to upgrade as soon as the patched release is available. There are no known workarounds for this vulnerability.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
数值计算不正确
Source: NVD (National Vulnerability Database)
Vulnerability Title
Vyper 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Vyper是vyperlang开源的一个 EVM 的 Pythonic 智能合约语言。 Vyper存在安全漏洞,该漏洞源于sqrt函数处理不当,可能导致计算结果错误。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2025-26622
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-26622
请登录查看更多情报信息。
- sqrt doesn't define rounding behavior · Advisory · vyperlang/vyper · GitHubx_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2025-26622
Same Patch Batch · vyperlang · 2025-02-21 · 3 CVEs total
| CVE-2025-27105 | AugAssign evaluation order causing OOB write within the object in Vyper | |
| CVE-2025-27104 | double eval in For List Iter in Vyper |
IV. Related Vulnerabilities
Same product: vyper
- CVE-2025-47774
Vyper's `slice()` may elide side-effects when output length - CVE-2025-47285
Vyper's `concat()` builtin may elide side-effects for zero-l - CVE-2025-27104
double eval in For List Iter in Vyper - CVE-2025-27105
AugAssign evaluation order causing OOB write within the obje - CVE-2025-21607
Success of Certain Precompile Calls not Checked in Vyper
Same vendor: vyperlang
- CVE-2025-47774
Vyper's `slice()` may elide side-effects when output length - CVE-2025-47285
Vyper's `concat()` builtin may elide side-effects for zero-l - CVE-2025-27104
double eval in For List Iter in Vyper - CVE-2025-27105
AugAssign evaluation order causing OOB write within the obje - CVE-2025-21607
Success of Certain Precompile Calls not Checked in Vyper
Same weakness: CWE-682
- CVE-2026-44498
ZEBRA: Block Validator Undercounts Coinbase and P2SH Sigops - CVE-2026-1229
Incorrect calculation in CIRCL secp384r1 CombinedMult - CVE-2026-24783
soroban-fixed-point-math has Incorrect Rounding and Overflow - CVE-2026-21911
Junos OS Evolved: Flapping management interface causes MAC l - CVE-2025-59047
matrix-sdk-base has panic in the `RoomMember::normalized_pow
V. Comments for CVE-2025-26622
No comments yet